IETF Logo Mail Archive

Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-aggregate-reporting-08.txt

"Brotman, Alex" <Alex_Brotman@comcast.com> Tue, 28 March 2023 15:11 UTC

Return-Path: <Alex_Brotman@comcast.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7872AC14CF12 for <dmarc@ietfa.amsl.com>; Tue, 28 Mar 2023 08:11:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.093
X-Spam-Level:
X-Spam-Status: No, score=-2.093 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=comcast.com header.b="uAN1769r"; dkim=pass (1024-bit key) header.d=comcastcorp.onmicrosoft.com header.b="orjN8niy"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dW3hiLoIO773 for <dmarc@ietfa.amsl.com>; Tue, 28 Mar 2023 08:11:53 -0700 (PDT)
Received: from mx0b-00143702.pphosted.com (mx0b-00143702.pphosted.com [148.163.141.77]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 326E8C1516F2 for <dmarc@ietf.org>; Tue, 28 Mar 2023 08:11:52 -0700 (PDT)
Received: from pps.filterd (m0184891.ppops.net [127.0.0.1]) by mx0b-00143702.pphosted.com (8.17.1.19/8.17.1.19) with ESMTP id 32SEeHKM022694; Tue, 28 Mar 2023 11:11:52 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.com; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=20190412; bh=oGPh8G9Bwith9/ZUvp51R5h83AgRiAq5Zt5O42wYKNA=; b=uAN1769rdvCfa0IyugtV81mCzdxHKkz3TCdxOdni1KneXiIoqlLkGLFeU21RNYQiIsyM lvcvOWmtQF2DHdjN1tNPtYTHmql1zE8e2NAdoX6Dqe4gvdpzYSPWVgBjyZuVt5m3OaVU UV7oitH1KcEGgabkNvXNbBISF879l0jzb5YkKUsl0aw1tndwCicqXoN+yk65ZrQEnyQ/ E/kgWpzIh47uKdUwWZTKCCUGLAEmAuWnHf61AAzPMMFisvHy5evjy5I+5bgVnJu15Sim JhS9dcRmwUB4zNLtPqmw2QOPVXlT5dzWIosloTSluUTccXDyR3z+wpCoSDZLHO+RcHQn eg==
Received: from nam10-bn7-obe.outbound.protection.outlook.com (mail-bn7nam10lp2100.outbound.protection.outlook.com [104.47.70.100]) by mx0b-00143702.pphosted.com (PPS) with ESMTPS id 3phwqjuv1d-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 28 Mar 2023 11:11:51 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=E/ySwg+F2bzv2bSnvET9QnLt9bocYN9zWitbCjZibceAVCkhTRB3QVfy/Sw1fWormRt+TIc1qptAMjfXkpj9x3BdyVNvu6kTIb9HhvV8r5PTXNJxQZIXvm77X2T3hfXbA0fi9RmTcqrYppT+gLvAIGa5mIQ3pq8465DTZKGR0pdDwDrT3i/ctq3czvZqNVzlj2RV4HEXPu0M2AcY5hqKlMf/+03LfTFpJJnitbrIWC56bwicOVjZTwXXAiIeKhtQcrCE/QHptjbXj/w95FYgGNhfWv71T8N+2yQFKR+Q+n3xAHNUiiAFEkopRycmsCPBup4MmNN+oGyeqmVuaM/QOw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=oGPh8G9Bwith9/ZUvp51R5h83AgRiAq5Zt5O42wYKNA=; b=jBH5ax38mGoG6wrgiaBxqC/dFCcWlCxbyPOnUQgY+6bRzqyJT/4nNRkVMSkQLyXaCsSfeikvgluCSqPMMhxmhHLXMXZ4tEGWvF++PpDFK34F6QKSNniZoLHafVw9LC7IQAgGcMssL/ZRAW4A6VKzL2fbxHGuuvFLOHRm7eA5lKdJ25TElE2sL9ZQgU6GRCQYGIaBYDqGHdlIoxaeh+Eq6hvoprjP9rXMTdyRJmaOo00jWSPshuVQX9vs6VvEdeQr++7wLD6rN7vi6hGACIucgRP9uz3coP/9niSAN+JIIJsa9dIssxlC1/kJZXiDuWdOHxOXKjuAr/FIdmGpMmmWcQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=comcast.com; dmarc=pass action=none header.from=comcast.com; dkim=pass header.d=comcast.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcastcorp.onmicrosoft.com; s=selector1-comcastcorp-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=oGPh8G9Bwith9/ZUvp51R5h83AgRiAq5Zt5O42wYKNA=; b=orjN8niyT057XAi/G8Ob7bjuYXaVK3rc9A0sWJJoNteT7xJG1DMs/4Hxx6a0I6CntXgYIp9lAuNfBR3cgJDQxsB2Y14Eb+vmKMGhLKLG67mfaZnjnOJhWZ0C/EPK49lRZC1B+M6l2eGLRM16Cz32yioV8b+c9slrYOTFtUrXBIs=
Received: from MN2PR11MB4351.namprd11.prod.outlook.com (2603:10b6:208:193::31) by PH7PR11MB5819.namprd11.prod.outlook.com (2603:10b6:510:13b::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6178.37; Tue, 28 Mar 2023 15:11:47 +0000
Received: from MN2PR11MB4351.namprd11.prod.outlook.com ([fe80::5acd:7431:27b0:8d40]) by MN2PR11MB4351.namprd11.prod.outlook.com ([fe80::5acd:7431:27b0:8d40%6]) with mapi id 15.20.6222.030; Tue, 28 Mar 2023 15:11:47 +0000
From: "Brotman, Alex" <Alex_Brotman@comcast.com>
To: Scott Kitterman <sklist@kitterman.com>, "dmarc@ietf.org" <dmarc@ietf.org>
Thread-Topic: [dmarc-ietf] I-D Action: draft-ietf-dmarc-aggregate-reporting-08.txt
Thread-Index: AQHZYMlL22Ya3dh2HEa6EXUPXclE4a8PAPCAgAFJ0gA=
Date: Tue, 28 Mar 2023 15:11:46 +0000
Message-ID: <MN2PR11MB4351233B049BF8B25F96032CF7889@MN2PR11MB4351.namprd11.prod.outlook.com>
References: <167993454302.11169.10772353959635417283@ietfa.amsl.com> <4313263.H7jo6l85BW@localhost>
In-Reply-To: <4313263.H7jo6l85BW@localhost>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_ActionId=033db45e-98aa-4b94-a2c3-4389229a06ec; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_ContentBits=0; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_Enabled=true; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_Method=Standard; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_Name=Confidential (C); MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_SetDate=2023-03-28T15:01:25Z; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_SiteId=906aefe9-76a7-4f65-b82d-5ec20775d5aa;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: MN2PR11MB4351:EE_|PH7PR11MB5819:EE_
x-ms-office365-filtering-correlation-id: a115e01c-0005-4c16-357e-08db2f9ebfa7
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: Um0DXYa2GWM2MGMRcQGWhzYdAxTko3d8W1YO/Znlu5erUlJL1GPtb4hg6SsAT/yA2UjW7voUyuNg9CRN1422jaoz4S8N5h7sLBBfzI/7xhuS0BrWJ9/hN5L+/wHJ2v8T91guBKT8acgOrEw6vocgJSAygDV6r1uk7CBQp/wW4qoxdOzl11lRoQFuzm8HMlC6sk29Dtfmg2vBQ8CxKfHvspl4abskiFr4QGCurcrpC8DoE5EyVyhC3Aad+A2hgm2MpBZdT1hL24JNmXo7w718GTxQDh8DU7ZOWOScV00Ixt0omfgln2kL/OnODbgVcC48X1DeGALSApFe1RUWv7UzvoGVAMfUOJYpNIrDkvWljLPgV4UJa1dhv8IIEoc0ePGB8WYCm1IjEHiCQ1d9GBpvl1Jeggv//CGxjNDcG/isgD0MrnVpZ5TBLNHuiALvdCcZ9lWFvInsbHswvpOIy9fsCHlIfzsuhAN+hLucJjchcQNgfNCiIWlmzZ1f5/wasM3hXarwJz3mpvfACqZqDxjM1u7ZxueMMmyoe5Ot7R49Bt1wJTKSBe5S0wFLRdmc5iBQKPOGZY5+cQLpS/SucuyEV03pR6hIpCCLFXJB/p7IwOc=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR11MB4351.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(4636009)(346002)(366004)(396003)(136003)(376002)(39860400002)(451199021)(38070700005)(8936002)(316002)(53546011)(52536014)(66556008)(38100700002)(33656002)(64756008)(83380400001)(966005)(9686003)(7696005)(55016003)(110136005)(66446008)(8676002)(2906002)(76116006)(19627235002)(478600001)(86362001)(186003)(122000001)(66574015)(66476007)(6506007)(5660300002)(71200400001)(66946007)(82960400001)(41300700001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: comcast.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MN2PR11MB4351.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: a115e01c-0005-4c16-357e-08db2f9ebfa7
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Mar 2023 15:11:46.9506 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 906aefe9-76a7-4f65-b82d-5ec20775d5aa
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: QSgqdi4yM1suv427xZ9o97MLRpi+H+lBNn6psuQ4WmM+53mPFpoAZTZMztIhUxGNPXNavRiFOiwec1tNZdOl4lPHMJJbcmgoUNibLs3sB9Y=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH7PR11MB5819
X-Proofpoint-GUID: 7HVhmcnybF73xi8-tikFle6b4KVpFOhA
X-Proofpoint-ORIG-GUID: 7HVhmcnybF73xi8-tikFle6b4KVpFOhA
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.254,Aquarius:18.0.942,Hydra:6.0.573,FMLib:17.11.170.22 definitions=2023-03-24_11,2023-03-28_02,2023-02-09_01
X-Proofpoint-Spam-Reason: safe
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/46hkDfynz629rrz1sMiHAgfCmgo>
Subject: Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-aggregate-reporting-08.txt
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Mar 2023 15:11:58 -0000

Ale,  
Thanks for the notes, I'll try to get those sorted out.  I'll check RE the 7405/5234 to see what I can find.  I only made one minor modification there based on a ticket JohnL had submitted.

Scott,

There were two version fields in this document at one point.  The second originally came about when there was a thought that there might be a "DMARC2' in the DNS record.  I'm happy to remove all references to a "version", as I agree with you that it doesn't have much utility at this point.  As for who would switch to BIS and use PSL, that was a separate discussion perhaps three weeks ago (https://mailarchive.ietf.org/arch/msg/dmarc/4jyF_FytKZ1tR7bknkMi23cLQYw/).  Trent's point was that the reporter should not leave the policy domain being discovered left to interpretation, and instead cleanly state which method was used.

I can change those references.  I agree that it's probably more of a RefNeeded sort of thing.  

The Data Consistency section was added based on a fairly old ticket (from a conversation between Tomki and Seth IIRC).  Do you believe it completely unnecessary, or that it needs to elaborate a bit more?

--
Alex Brotman
Sr. Engineer, Anti-Abuse & Messaging Policy
Comcast

> -----Original Message-----
> From: dmarc <dmarc-bounces@ietf.org> On Behalf Of Scott Kitterman
> Sent: Monday, March 27, 2023 3:21 PM
> To: dmarc@ietf.org
> Subject: Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-aggregate-reporting-08.txt
> 
> On Monday, March 27, 2023 12:29:03 PM EDT internet-drafts@ietf.org wrote:
> > A New Internet-Draft is available from the on-line Internet-Drafts
> > directories. This Internet-Draft is a work item of the Domain-based
> > Message Authentication, Reporting & Conformance (DMARC) WG of the IETF.
> >
> >    Title           : DMARC Aggregate Reporting
> >    Author          : Alex Brotman
> >    Filename        : draft-ietf-dmarc-aggregate-reporting-08.txt
> >    Pages           : 29
> >    Date            : 2023-03-27
> 
> I'm not convinced we entirely made progress on this revision.
> 
> It's likely I missed or have forgotten the list discussion on some of these items,
> sorry for any repetition.
> 
> This revision removes the optional version field, adds a new optional field for
> discovery method, and adds a paragraph on data consistency in reporting.
> There are other changes that look to be editorial.
> 
> I agree with the removal of the version field.  It never made any sense to me.
> 
> I see though that the version element is only removed from the text, not from
> Appendix A and Appendix B.  Is it intended to be removed?  Now I'm confused.
> 
> I don't understand who is expected to implement DMRCbis and report using the
> PSL.  If you want to keep using RFC 7489, nothing stops you, but it would be odd
> to decide not to upgrade your DMARC processing, but still expend engineering
> resources to upgrade your reporting.
> 
> Also, this revision correctly drops the reference to RFC 7489 because it was no
> longer referenced in Section 2.1, but now it's referenced in the schema, so
> doesn't it need to be added back?  Also, this is presumably published with
> DMARCbis, which will obsolete RFC 7489.  Is it good IETF practice to reference
> historic documents?
> 
> I'm not sure this really adds much.  If we do keep it, I think it's in the wrong
> section.  How you found the policy isn't the policy that was published.
> I think this goes in the metadata section.
> 
> Regarding "Data Consistency in Reporting", I don't see the point.  Who is going
> to read this section and do something different?  Are we suggesting that
> recording the results and reporting them is not sufficient?  Do receivers need to
> run a second DMARC check on the data before sending feedback to make sure
> it's consistent?  I reads like a plea not to use buggy software.  Who do we expect
> to read an RFC and then realize they should test before deploying to avoid
> sending inconsistent data?  Seriously, what behavior are we trying to motivate
> here that fits within an RFC's scope?
> 
> Scott K
> 
> 
> _______________________________________________
> dmarc mailing list
> dmarc@ietf.org
> https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/dmarc__;!
> !CQl3mcHX2A!H8G5uZT5a1ton4-
> AnqD6LNYhIxe47F4MTcjsmU0XzJyGBFHD3tirxEwynV-
> vaG21KThPjTN7ZDUhabSiLht-$

v2.23.0 | Report a Bug | By Email